+ Reply to Thread
Page 2 of 3 First 12 3 Last
Results 26 to 50 of 75

Thread: ECSA review

  1. Junior Member Registered Member
    Join Date
    Feb 2017
    Posts
    5
    #26
    Yep that is what I have been doing. Did you have issues with the hydra tool not working properly? I appreciate your comments and feedback.
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    958

    Certifications
    C****, C***, C**
    #27
    Quote Originally Posted by Charli View Post
    Yep that is what I have been doing. Did you have issues with the hydra tool not working properly? I appreciate your comments and feedback.
    I will PM you.
    Reply With Quote Quote  

  4. Junior Member Registered Member
    Join Date
    Oct 2011
    Posts
    3
    #28
    hi Mike,

    how to compromise the ubuntu and centos machine, challenge 2. i tried many exploits but session is not getting created. pls help.

    Thanks.
    Reply With Quote Quote  

  5. twe
    twe is offline
    Junior Member
    Join Date
    Feb 2016
    Posts
    10
    #29
    I did this course last year and was more impressed than CEH v9 - Passed both.
    With the scanning of the networks I noticed that I had to scan through 2 different subnets to find some of the others.
    Also with the report you don't need to finish all the fluff. How you got to completing the challenge with screenshots as evidence was enough as I was running out of time to finish the report and still passed.
    Reply With Quote Quote  

  6. twe
    twe is offline
    Junior Member
    Join Date
    Feb 2016
    Posts
    10
    #30
    Oh and I was given a book but it literally was a print out of all the PDF's in black & white.
    Reply With Quote Quote  

  7. Junior Member
    Join Date
    Mar 2017
    Posts
    7
    #31
    Sounds fun to u. I hope i could enjoy lik u do.
    Can u give some advice. I did CEH training and planning to get certified ECSA. How long does it take and is it hard?

    Thnx
    Reply With Quote Quote  

  8. Junior Member Registered Member
    Join Date
    Dec 2015
    Posts
    1
    #32
    Hi Mike
    I'm having my ECSA exam next week, do you have any thing to share which could help in passing the exam
    Best regards
    Reply With Quote Quote  

  9. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    958

    Certifications
    C****, C***, C**
    #33
    Quote Originally Posted by Feras_mz View Post
    Hi Mike
    I'm having my ECSA exam next week, do you have any thing to share which could help in passing the exam
    Study your course materials. Good luck for your exam.
    Reply With Quote Quote  

  10. Junior Member
    Join Date
    Mar 2017
    Posts
    7
    #34
    I have activated ECSA dashboard and the assignments seems quite hard. Also the report writing must be a lengthy work. Any word or suggestion on that.
    Reply With Quote Quote  

  11. Junior Member
    Join Date
    Mar 2017
    Posts
    7
    #35
    Hello Mike, first of all congrats for passing the ECSA. I have just started with the ECSA journey. Activated the ECSA dashboard and downloaded the sample report within which there was 3 folders and multiple folders within it. Few were empty and few had 1-2 files within it.
    I wanted to ask if we need to upload the report in that same format of files filling up the folders and files.
    Also is the pen-test assignments same to all?
    Reply With Quote Quote  

  12. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    958

    Certifications
    C****, C***, C**
    #36
    Quote Originally Posted by su.jin View Post
    Hello Mike, first of all congrats for passing the ECSA. I have just started with the ECSA journey. Activated the ECSA dashboard and downloaded the sample report within which there was 3 folders and multiple folders within it. Few were empty and few had 1-2 files within it.
    I wanted to ask if we need to upload the report in that same format of files filling up the folders and files.
    Also is the pen-test assignments same to all?
    For me, there is only one Word report to submit and I used the "Sample Penetration Testing Report.doc" file. Please do not ask me how to do the assignment. You need to invest time and effort researching and figuring out how to solve the challenges. Good luck and hope you enjoy the challenges.
    Reply With Quote Quote  

  13. Senior Member
    Join Date
    Jun 2016
    Posts
    108
    #37
    Everyone seems to be asking Mike for help lolzzz.

    Surely through research, reading and perseverance you can all get across the finish line? Best of luck to you all moving forward, think of it being an actual work assignment where you are stuck and need to come up with a solution.
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    958

    Certifications
    C****, C***, C**
    #38
    Quote Originally Posted by scasc View Post
    Everyone seems to be asking Mike for help lolzzz.
    Seems that this forum post is one of the top Google results for "ECSA review". I do get some friend and Facebook requests. Maybe I should charge EC-C for promoting their certification.
    Last edited by Mike7; 06-02-2017 at 04:39 PM.
    Reply With Quote Quote  

  15. Junior Member
    Join Date
    Mar 2017
    Posts
    7
    #39
    Thanks Mike, I got confused with other files and folders too..
    Yes I would surely love to enjoy with the assignments..
    Will keep updated with my journey
    Reply With Quote Quote  

  16. Junior Member
    Join Date
    Mar 2017
    Posts
    7
    #40
    Quote Originally Posted by Mike7 View Post
    Seems that this forum post is one of the top Google results for "ECSA review". I do get some friend and Facebook requests. Maybe I should charge EC-C for promoting their certification.
    Ha..ha..Yes you can...You should approach EC-Council too with a proposition on it..Its a good idea with usefulness of forum and groups.
    Reply With Quote Quote  

  17. Junior Member Registered Member
    Join Date
    Jun 2017
    Posts
    4
    #41
    Quote Originally Posted by Mike7 View Post
    Seems that this forum post is one of the top Google results for "ECSA review". I do get some friend and Facebook requests. Maybe I should charge EC-C for promoting their certification.
    Hi Mike,

    I took the course and I am working on the challenges/report.

    I hve already completed Day 1 / Challenge 1, but I am stuck on 2 places in Day 2 / Challenges 2/3/4

    For Challenge 2, I compromised the machine, gor the file and hash, no problem. But for the pictures, I found them and downloaded them, but while I assume the "messages" it tals about have to do with steganography, I cannot for the likes of me find any tool to try anything with!!! What tool(s) can you use? Googling seems to always point to "steghide" which is not included and of course cannot be installed

    For challenge 3, no clue what to try on that web server... Got a tip to find hidden directories so will try that path

    Challenge 4 was done, no issues there.

    Appreciate any help.

    Thanks!!!
    Reply With Quote Quote  

  18. Junior Member Registered Member
    Join Date
    Jun 2017
    Posts
    4
    #42
    Has anyone done challenge 2? What tools did you use?
    Reply With Quote Quote  

  19. Junior Member Registered Member
    Join Date
    Jun 2017
    Posts
    4
    #43
    I know I'm supposed to use steganography, but I cannot find any tools for it (and of course you cannot install any new ones)
    Reply With Quote Quote  

  20. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    958

    Certifications
    C****, C***, C**
    #44
    Attached to the Windows VM is a DVD of tools.
    Reply With Quote Quote  

  21. Junior Member Registered Member
    Join Date
    Jun 2017
    Posts
    4
    #45
    Quote Originally Posted by Mike7 View Post
    Attached to the Windows VM is a DVD of tools.
    Hi Mike,

    Yes, I know that...

    The problem was searching for "steg" or similar only found 1 program which required internet installation (and as you know, there is no internet access from the vms)

    Someone mentioned another program to me and I found it and was able to use it. The annoying thing is that his program also contained "steg" within the name/filename and it did not appear on the search as it should...

    Anyway, done now and had my report approved, so now onto the exam in a few...
    Reply With Quote Quote  

  22. Junior Member Registered Member
    Join Date
    Mar 2015
    Posts
    1
    #46
    I have taken the official course at the Hacker Halted event in 2016. It was for v9 and all the materials reflected that. We setup ilabs on day one, and the pace was pretty breakneck from there on out, doing the daily labs. We talked about the challenge lab and were encouraged to attempt the challenges each night. We were given some generic pointers in some of the early challenges as far as methodology goes, but no specific answers.

    I had recently passed all my lab challenges. I submitted my report and was approved promptly. I simply changed the sample to reflect the challenge lab "company info" and added in my findings for each challenge towards the end of the report. I am scheduled to take the test in about 5 days. within the aspen site, you can download pdfs for modules 1-39 that cover all sorts of topics. my book is only printed up to module 16, which is what we covered in class.

    I am curious if the exam covers much from modules 17-39. That is a LOT of testable material (just modules 1-16 printed take up 669 pages). I will update after my experience next week.
    Reply With Quote Quote  

  23. Junior Member Registered Member
    Join Date
    Jul 2017
    Posts
    1
    #47
    I started with the challenges today. I've done OSCP and I found even the start confusing. Discovering "other" subsets was hopeless. I let 10.0.0.0/8 and 172.16.0.0/12 run overnight and got nothing. I found a reference to 10.10.10.1&10.10.10.2 on a machine as well as 192.168.177.1, but could not tech any of the ips. Even stranger, while I could ping the def gw and it would respond, it would not respond to trace route. Any chance my lab virtual config is messed up?
    Reply With Quote Quote  

  24. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    958

    Certifications
    C****, C***, C**
    #48
    Quote Originally Posted by Frogpuppet View Post
    I started with the challenges today. I've done OSCP and I found even the start confusing. Discovering "other" subsets was hopeless. I let 10.0.0.0/8 and 172.16.0.0/12 run overnight and got nothing.
    Believe when you exit iLabs, your VM are suspended and the scanning stops. See my earlier post
    Reply With Quote Quote  

  25. Senior Member McxRisley's Avatar
    Join Date
    May 2016
    Posts
    184

    Certifications
    Bachelors of Science in IT, MTA, SEC+, CSA+, CASP, C|EH, OSCP
    #49
    I too would like to know the name of the setganalysis tool to use as I cant seem to find it within the provided tools and the version of Kali they give us doesnt have steganalysis tools installed on it.
    Reply With Quote Quote  

  26. Junior Member
    Join Date
    Aug 2017
    Posts
    12
    #50
    Hello all,

    I am starting that challenges part as well. Scanning was even fast and all machines were find, so I can continue with next tasks.
    Just find those jpg images and I am trying to get some info from them, for now strings, binwalk, exiftool did not help too much
    Mike any advices? Of course I am not asking for solution Small light in the tunnel will enough and rest will stay in my fingers.

    I am wondering what will be next

    Take care guys and good luck all of you who already works on those games
    Reply With Quote Quote  

+ Reply to Thread
Page 2 of 3 First 12 3 Last

Social Networking & Bookmarks